Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/Oa_5W8F9DZWgvq9kHId6eL3yS54.roa
File: Oa_5W8F9DZWgvq9kHId6eL3yS54.roa (raw, json)
Hash identifier: nd7es0eL5KGlgY6ep++b/gEtQNBRqIkImgJMf3HWT2Q=
Subject key identifier: 39:AF:F9:5B:C1:7D:0D:95:A0:BE:AF:64:1C:87:7A:78:BD:F2:4B:9E
Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Certificate serial: 0135
Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/Oa_5W8F9DZWgvq9kHId6eL3yS54.roa
Signing time: Fri 01 Sep 2023 08:49:56 +0000
ROA not before: Fri 01 Sep 2023 08:49:56 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 983
IP address blocks: 103.160.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309 (0x135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7
Validity
Not Before: Sep 1 08:49:56 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=39AFF95BC17D0D95A0BEAF641C877A78BDF24B9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:71:dc:da:8f:8c:8e:41:9c:2b:a8:c5:f0:94:
cf:e8:91:18:ce:35:e7:1b:ee:5d:31:60:a9:a4:cd:
75:2a:a2:96:7a:15:3b:6a:c3:e4:9e:2d:69:19:1a:
5a:17:7f:68:f9:cf:25:5e:96:56:30:2b:f8:81:14:
73:bf:b3:59:2a:fd:80:ea:1d:a2:d7:97:bb:ba:18:
a0:9d:6e:2f:92:80:46:1c:e5:a8:1b:d0:21:cc:70:
63:23:0e:d6:7c:94:fc:ce:50:f1:df:c1:c6:6d:b5:
15:e5:fb:cf:45:38:47:d1:e0:82:af:1a:69:ea:12:
1a:86:a6:e0:7d:00:0c:d6:7f:98:43:0f:35:99:b2:
02:a8:97:9f:bf:b8:57:db:fa:48:85:e3:3b:1f:18:
b8:23:60:0d:bb:0d:cd:94:73:8b:8a:8f:4c:f8:a4:
cc:ad:1c:41:2a:27:de:ee:c0:94:1c:09:d2:91:ba:
1b:65:10:5d:e7:0a:34:df:9c:e2:4d:c5:b0:72:df:
f5:af:3e:0f:1a:bb:1d:b7:d7:f7:e7:c3:0b:35:d3:
cc:20:9f:8f:0a:c6:e5:d2:67:32:64:03:ea:fd:0c:
21:d4:03:83:ba:af:81:c1:51:41:de:2f:57:cb:ec:
70:8e:e9:dc:b8:55:ae:58:1a:59:27:31:e2:49:92:
bd:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:AF:F9:5B:C1:7D:0D:95:A0:BE:AF:64:1C:87:7A:78:BD:F2:4B:9E
X509v3 Authority Key Identifier:
keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/Oa_5W8F9DZWgvq9kHId6eL3yS54.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.160.180.0/23
Signature Algorithm: sha256WithRSAEncryption
63:27:e2:5e:11:b4:1b:36:35:bd:1b:fa:25:89:1f:db:5c:48:
06:8a:f4:ff:6b:6e:7a:38:d0:e5:5c:97:e0:d8:3f:c7:8f:59:
b6:35:a8:35:2a:33:26:e0:f3:8a:73:0c:73:b7:40:26:f5:c6:
09:ba:5b:e1:d5:70:4e:b8:ed:ea:91:ed:c1:35:a5:ec:55:4e:
f6:83:2c:77:2f:29:14:76:82:74:4e:00:2d:1f:2c:dd:a5:44:
fb:a0:5b:19:e9:ad:57:75:fd:e1:66:1d:d9:23:00:66:f6:ec:
99:c6:47:d7:6f:9d:20:30:ae:a7:5d:b5:28:aa:68:d8:ad:bf:
2c:b5:fe:04:8a:c7:6a:4e:6d:06:b6:fd:25:88:31:cb:2b:80:
40:32:91:29:b9:4a:45:47:6d:78:a4:bc:a7:3c:54:a8:cc:3a:
1e:6f:a2:fa:18:ea:83:5e:40:44:74:56:1e:ca:04:99:f3:b9:
b8:cd:39:df:c9:8d:f7:3f:09:de:06:40:ed:46:ef:61:3f:36:
ce:9c:ac:f3:0f:7f:32:fe:75:25:8a:f6:4c:a7:61:16:3b:12:
24:29:cb:54:cb:15:3e:be:5f:7a:ec:48:8c:3e:da:80:0b:8b:
10:30:ec:71:71:d2:e7:d9:d3:a4:92:af:8c:17:78:c0:5c:47:
78:75:cf:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:19 2024 by rpki-client on console-fra.rpki-client.org